Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/OS-YoWnsu0Fne6eqBMNSlJeWCiI.roa
File: OS-YoWnsu0Fne6eqBMNSlJeWCiI.roa (raw, json)
Hash identifier: DiXqArngf7WO1zj+jxI1MzsIurR4Pw27/SW/gAKbyGM=
Subject key identifier: 39:2F:98:A1:69:EC:BB:41:67:7B:A7:AA:04:C3:52:94:97:96:0A:22
Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658
Certificate serial: 018B8C16F2977BFCD8E52BB9C20BC20244BB
Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/OS-YoWnsu0Fne6eqBMNSlJeWCiI.roa
Signing time: Wed 01 Nov 2023 18:13:15 +0000
ROA not before: Wed 01 Nov 2023 18:13:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139321
IP address blocks: 2001:678:acc::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8c:16:f2:97:7b:fc:d8:e5:2b:b9:c2:0b:c2:02:44:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658
Validity
Not Before: Nov 1 18:13:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=392f98a169ecbb41677ba7aa04c3529497960a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7e:86:a6:62:6c:59:7f:ae:23:1c:ce:f1:02:
c0:1f:19:58:cd:c2:b6:5b:42:fe:0d:ef:bb:d8:37:
f6:25:ef:f5:27:84:72:8b:80:05:3c:fd:08:6d:c5:
18:06:96:0b:d1:bb:c9:44:93:21:f7:72:f8:f5:6d:
02:20:c0:b1:7b:d6:ab:f7:fa:4e:f8:0c:5b:95:c3:
f9:0c:65:c8:6d:95:e0:1a:5a:11:38:54:e9:4e:75:
11:fc:f5:20:7e:5d:71:e9:ab:2a:ac:09:c1:66:3d:
6c:da:37:98:9e:78:29:24:ad:91:b2:00:fe:e2:8d:
fa:8e:63:27:4c:07:a8:a5:63:d5:b0:e6:13:56:ed:
e3:bd:da:09:15:1a:11:c8:02:a9:f8:92:06:d9:5a:
16:c3:83:7d:e6:9e:c0:5c:00:fa:77:00:08:52:0a:
96:0f:4e:44:5c:9a:2f:c8:51:8d:83:17:54:7a:e3:
80:cc:2c:77:c5:3e:d6:62:46:76:73:89:6c:55:87:
6b:0c:a0:b2:0f:37:53:5d:7e:18:26:07:53:e6:42:
30:51:ce:a4:8c:07:e5:7f:3b:5a:44:d8:91:4c:3a:
f1:5f:ab:51:9d:ef:4f:88:24:61:ef:ea:48:85:6b:
5a:96:92:37:52:0b:be:34:06:17:06:2b:4d:bc:0a:
ba:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2F:98:A1:69:EC:BB:41:67:7B:A7:AA:04:C3:52:94:97:96:0A:22
X509v3 Authority Key Identifier:
keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/OS-YoWnsu0Fne6eqBMNSlJeWCiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:acc::/48
Signature Algorithm: sha256WithRSAEncryption
3d:db:b6:35:2e:48:71:c0:c9:c7:3b:76:a8:f7:6c:52:ee:35:
e5:2d:f1:e2:9c:0d:d0:70:f0:55:79:c9:31:d5:ae:df:56:10:
5e:ec:61:2c:4c:b2:5a:24:6f:e7:e2:5d:dc:80:64:24:ad:8e:
83:f6:21:08:b5:62:d0:78:32:c9:0c:9a:2f:2a:ea:0e:b6:3b:
7e:d9:b6:b6:75:dd:83:cc:dd:9e:c9:ba:67:e6:f4:8f:3d:0d:
24:4e:68:95:7a:0d:75:53:bf:22:5b:f9:1b:92:db:20:58:0b:
e8:83:c5:8e:eb:9b:d1:33:45:8b:6c:de:f2:0e:a3:97:67:ab:
62:6e:cd:35:12:30:37:2d:c4:cd:6e:60:5e:73:c5:7f:b9:95:
24:11:be:a7:53:09:5f:68:86:ca:48:9b:b1:31:27:93:db:69:
aa:c0:1a:c7:ac:29:0e:99:ea:f1:1f:2d:09:18:a5:f4:64:70:
58:0d:94:03:86:4d:54:b6:df:53:13:71:9a:72:21:1d:fe:99:
a3:9d:fb:3c:cc:e7:18:2e:29:d9:c1:65:e9:1e:00:21:01:34:
f3:e5:17:c0:f2:93:31:f9:c9:6f:17:7a:f2:e6:52:92:ed:a4:
43:d9:d2:e0:b6:46:a9:2f:9f:86:0d:00:86:c0:71:92:c3:36:
0c:18:1d:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:24 2024 by rpki-client on console-fra.rpki-client.org